02/05/2016 GoogleHackingDatabase,GHDB,GoogleDorksPart6

GoogleHackingDatabase(GHDB)

VulnerableServers
These searches reveal servers with speci c vulnerabilities. These are found in a di erent way than the searches found in the "Vulnerable Files" section.

Vulnerable Servers Search SEARCH

<< prev 1 2 3 next >>

DATE Title Summary

allintext:Copyright Smart PHP Poll. All Rights

2015-03-16 The dork "allintext:Copyright Smart PHP Poll. All Rights Reserved. -exploit" show al...
Res...

The dork "allinurl:moadmin.php -google -github" show all the sites that uses Mongo
2015-03-04 allinurl:moadmin.php -google -github
D...

https://www.exploitdb.com/googlehackingdatabase/6/?pg=1 1/4
02/05/2016 GoogleHackingDatabase,GHDB,GoogleDorksPart6

2014-12-22 inurl:/el nder/el nder.html+intitle:"elFind... Upload Vulnerability El nder 2.0 inurl:/el nder/el nder.html+intitle:"elFinder
2.0&q...

inurl:robots.txt intext:CHANGELOG.txt inurl:robots.txt intext:CHANGELOG.txt intext:disallow ext:txt -site:github.com sites

2014-11-03
intext:disal... that ha...

inurl:CHANGELOG.txt intext:drupal intext:"SA-CORE" -intext:7.32 -site:github.com -

2014-11-03 inurl:CHANGELOG.txt intext:drupal intext:"SA-...
sit...

2014-10-02 ext:cgi inurl:cgi-bin intext:#!/bin/bash gnu-bash site dorks Ariel Anonis - @ariel_anonis ...

Search for all Apache servers that are running speci c versions of OpenSSL. These
2014-05-05 "OpenSSL" AND "1.0.1 Server at"...
speci c ve...

Search Oracle Reports likely vulnerable to DB user/password disclosure (CVE-2012-

2014-02-05 inurl:"/reports/rwservlet" intext:"...
3152 and CVE...

Google search for actoin les wich could be explotable via CVE-2013-2251 "Multiple
2013-11-25 inurl:"struts" letype:action
Remot...

inurl:.php? inurl:.php? intext:CHARACTER_SETS,COLLATIONS, ?intitle:phpmyadmin view

2013-08-08
intext:CHARACTER_SETS,COLLATIONS, ?int... phpMyAdmin of web sit...

2012-12-31 inurl:/wp-content/w3tc/dbcache/ - Jay Townsend...

# Exploit Title: SQLI Exploit # Google Dork: intext:SQL syntax & inurl:index.php?=id
2012-12-31 intext:SQL syntax & inurl:index.php?=id & ...
&...

More than 100k sites a ected It will show asp sites that are vulnerable to sql
2012-08-21 intext: intext: intext: intext: intext:
injection (...

Hi, This google dork exposes any already uploaded asp.net shells which are
2012-05-15 intitle:awen+intitle:asp.net
available in Bac...
https://www.exploitdb.com/googlehackingdatabase/6/?pg=1 2/4
02/05/2016 GoogleHackingDatabase,GHDB,GoogleDorksPart6

2012-05-15 intitle:"-N3t" letype:php undetectable intitle:"-N3t" letype:php undetectable Search WebShell indexed on a page. -- ...

2011-12-23 inurl:.php intitle:- BOFF 1.0 intext:[ Sec. Info ] This search attempts to nd the BOFF 1.0 Shell. Author: alsa7r ...

2011-11-25 letype:php inurl:tiki-index.php +sirius +1.9.* Finds servers vulnerable to the CVE-2007-5423 exploit. Author: Matt Jones ...

letype:php inanchor:c99 inurl:c99 This search attempts to nd the c99 backdoor that may be knowingly or
2011-11-24
intitle:c99she... unknowingly installed o...

2011-11-19 inurl:php intitle:"Cpanel , FTP CraCkeR" locates cpanel and ftp cracker. Author: alsa7r ...

intitle:#k4raeL - sh3LL Finds K4rael Shell , though many of them are dead but we
2011-10-11 intitle:#k4raeL - sh3LL
can get som...

2011-09-26 inurl:view.php?board1_sn= locates a webapp vulnerable to SQL injection ...

2011-07-26 intitle:m1n1 1.01 nd the b374k shell.... Submitted by : biLLbud ...

2011-05-03 intitle:Locus7shell intext:"Software:" intitle:Locus7shell intext:"Software:" Submitted by lionaneesh -- Thanks Ane...

2011-03-23 intitle:"[EasyPHP] - Administration" Unprotected EasyPHP Admin page detection.. Author: Aneesh Dogra (lionaneesh) ...

MySQL: ON MSSQL: OFF Oracle: OFF MSSQL:

2011-02-24 Author :- eXeSoul You will get lots of web shells even some private shells....
OFF Postgr...

2011-02-24 intitle:cyber anarchy shell Submitter: eXeSoul cyber anarchy shell ...

2010-12-10 inurl:/vb/install/upgrade.php Vbulletin custom updrade wizards. Author: ScOrPiOn...

Vbulletin installation wizards, allow users to modify installation parameters. May

2010-12-10 inurl:/vb/install/install.php
also reveal ...

"CGI-Telnet Unit-x Team Connected to

2010-12-09 Locates CGI-Telnet web shells. Author: ScOrPiOn...
*.com&qu...
https://www.exploitdb.com/googlehackingdatabase/6/?pg=1 3/4
02/05/2016 GoogleHackingDatabase,GHDB,GoogleDorksPart6

2010-12-08 "www.*.com - c99shell" OR "www.*.ne... Locates c99 web shells Author: ScOrPiOn...

2010-12-07 "safe_mode: * PHP version: * cURL: * MySQL... Locates r57 web shells Author: ScOrPiOn...

2010-12-07 "r57shell" Locates r57 web shells Author: ScOrPiOn...

2010-12-07 "r57shell 1.4" Locates r57 web shells Author: ScOrPiOn...

2010-12-07 "[ phpinfo ] [ php.ini ] [ cpu ] [ mem ] ... Locates r57 web shells Author: ScOrPiOn...

CVE: 2007-4007 EDB-ID: 4221 This google dork possibly exposes sites with the
2010-11-13 inurl:index.php?pagedb=rss -Vulnerability -inurl
Article Direct...

2006-05-03 intitle:"Uploader - Uploader v6" -pixloa... File upload servers, dangerous if used in couple with mytrashmail.com...

MvBlog is prone to multiple input-validation vulnerabilities. These issues are due to

2006-04-25 intitle:"MvBlog powered"
a failure...

Hi It will give you administrative ownership over Horde webmail system plus all
2006-02-03 intitle:"Horde :: My Portal" -"[Tic...
users in Hord...

Web con guration pages for various types of systems. Many of these systems are
2006-01-22 inurl:rpSys.html
not password pr...

2006-01-16 letype:pl intitle:"Ultraboard Setup" setup pages to the ultraboard system....

<< prev 1 2 3 next >>

https://www.exploitdb.com/googlehackingdatabase/6/?pg=1 4/4